Senior Cloud DevOps Engineer 25+ years IT Exp 5+ year mgt exp

GARRETT FOX

DevSecOps Architect Cloud Security Engineer Enterprise Cloud Transformation

Leader

Prosper, TX 972-***-**** *******.***@*****.*** LinkedIn GitHub

PROFESSIONAL SUMMARY

Seasoned Cloud DevSecOps Architect with 25+ years of experience delivering secure cloud transformations, championing Infrastructure as Code (IaC) adoption, and building resilient microservices in highly regulated environments. Adept at weaving security into the SDLC; implementing automated CI/CD, policy-as-code frameworks, and event-driven microservices on multi-cloud (Azure, AWS, OpenStack). Notable for 50% cloud cost reductions, 70% faster deployments, and 60% fewer security vulnerabilities via strategic automation and robust governance.

Motivated by Zig Ziglar’s principle: “you don’t have to be great to start, but you have to start to be great”; I lead teams with positivity, clear communication, and hands-on mentorship. My goal is to enable frictionless development and secure, scalable operations, helping teams deliver impactful software without the drama.

PROFESSIONAL EXPERIENCE

KAPITUS Remote (NYC)

Interim Director of Cloud Engineering (DevSecOps Engineer III) January 2022 – February 2025

Strategic & Business Impact

● Led modernization of monolithic lending platform to microservices architecture using AWS serverless technologies, enabling faster deployment of new financial products and reducing time-to-market by 40%

● Orchestrated SOC 2 compliance implementation with automated security controls, maintaining developer velocity while meeting stringent financial industry regulations

● Optimized cloud infrastructure costs by 40% through strategic resource right-sizing, reserved instance planning, and vendor contract renegotiations Technical Leadership & Implementation

● Designed and implemented multi-account AWS architecture using Control Tower and Organizations with comprehensive IAM governance

● Established enterprise-wide GitOps practices with infrastructure-as-code pipelines

(Terraform/CloudFormation) integrated with security scanning gates

● Built real-time event-driven architecture (Lambda, EventBridge, API Gateway, DynamoDB) that processed over 1.5M daily financial transactions with 99.99% reliability

● Implemented automated security remediation by integrating AWS Security Hub findings with JIRA, reducing mean-time-to-remediate by 30%

● Deployed comprehensive observability platform combining AWS X-Ray, Datadog, and ELK stack, decreasing MTTR for production incidents from hours to minutes Leadership & Organizational Impact

● Directly managed cross-functional team of 15 DevSecOps engineers across three time zones (US, Eastern Europe, India)

● Owned $2M+ annual technology budget, strategically allocating resources to maximize engineering productivity and security posture

● Introduced OKR framework that aligned engineering efforts with business outcomes, improving project delivery predictability

● Cultivated a "shift-left" security culture that reduced production vulnerabilities by 60% through early detection and remediation

● Mentored junior engineers in cloud architecture patterns, secure coding practices, and advanced infrastructure automation

Day-to-Day Operations

● Led daily stand-ups and sprint planning for distributed engineering teams, removing implementation blockers and facilitating cross-team collaboration

● Conducted architecture reviews for critical systems, ensuring new deployments met resilience, security, and compliance requirements

● Collaborated with InfoSec on threat modeling and security architecture decisions for financial data protection

● Participated in on-call rotation, providing senior-level incident response for critical production systems

BRIGHTLINE (Robosoft/Eqvist) Remote (Miami)

Cloud DevOps Architect & Consultant November 2021 – August 2022 Strategic & Business Impact

● Designed standardized AWS environments for telehealth platform delivery, enabling rapid feature deployment while maintaining strict HIPAA compliance

● Optimized cloud spending through 20% cost reduction by implementing tagging strategies, reserved instances, and continuous optimization reviews

● Accelerated deployment cycles by 3x through secure CI/CD implementation without compromising compliance requirements

Technical Implementation

● Engineered microservices deployment pipelines with AWS CodeStar (CodeCommit, CodeBuild, CodePipeline) and integrated security scanning

● Developed reusable Terraform modules for automated environment provisioning with consistent IAM and encryption policies

● Integrated AWS Security Hub and Trusted Advisor with operational tools (Slack/JIRA) for proactive vulnerability management

● Created comprehensive architecture documentation, runbooks, and diagrams for seamless knowledge transfer

Day-to-Day Operations

● Collaborated across product, engineering, and security teams to align technical solutions with business requirements

● Conducted code reviews focusing on performance optimization, security best practices, and cost efficiency

● Delivered hands-on AWS training sessions for engineering teams on microservices architecture and container orchestration

NEUDESIC Remote (DFW)

Enterprise Cloud Architect Senior Consultant December 2020 – May 2022 Strategic & Business Impact (Azure Focus)

● Led enterprise-scale Azure migrations for Fortune 500 clients (Toyota, DoT, U.S. Air Force), reducing operational costs by 30%

● Implemented Azure FinOps strategies with resource tagging, cost allocation, and governance automation

● Accelerated cloud adoption through Azure Landing Zone blueprints compliant with NIST/HIPAA requirements

● Created policy-as-code solutions (HashiCorp Sentinel, OPA) automating security validation within CI/CD workflows

Technical Implementation

● Architected Azure infrastructure using Bicep/ARM templates for consistent, policy-compliant deployments at scale

● Built Azure DevOps pipelines with integrated security scanning for infrastructure-as-code

● Deployed comprehensive monitoring solutions with Azure Monitor and Log Analytics across multiple subscriptions

● Migrated legacy on-premises systems to Azure PaaS services (App Service, AKS, Functions), improving scalability and reducing operational overhead

● Implemented ephemeral testing environments for microservices development, enhancing developer productivity and QA efficiency

Day-to-Day Operations

● Facilitated discovery workshops aligning client business objectives with technical cloud migration strategies

● Led sprint planning for cross-functional teams, ensuring security integration throughout the development lifecycle

● Produced architecture decision records, detailed runbooks, and proof-of-concept implementations

● Mentored client teams on container orchestration, zero-downtime deployment strategies, and advanced monitoring solutions

SMARTRONIX (SMX) Remote (DC Metro)

Enterprise Cloud Architect Senior Consultant February 2018 – November 2020 Strategic & Business Impact

● Guided Fortune 500 organizations to achieve 99.99% uptime for mission-critical applications through multi-cloud architecture

● Established security frameworks aligned with PCI-DSS and NIST requirements across distributed systems

● Reduced cloud operations costs by 25% through right-sizing, reservation planning, and Azure Advisor optimizations

● Automated infrastructure provisioning with Terraform, reducing manual tasks by 40% and improving deployment reliability

Technical Implementation

● Built comprehensive Azure governance frameworks using Azure Policy, Blueprints, and custom Bicep/ARM templates

● Deployed AWS/Azure hybrid solutions with advanced routing, load balancing, and application security controls

● Implemented multi-region Azure deployments with Traffic Manager, Application Gateway, and Front Door

● Developed CI/CD pipelines in Azure DevOps and Jenkins with integrated security gates

(Checkov, SonarQube)

● Implemented end-to-end data encryption leveraging key management and secrets management solutions

Day-to-Day Operations

● Conducted architecture assessments and cloud readiness evaluations for migration projects

● Created detailed migration roadmaps for transitioning monolithic systems to containerized and serverless architectures

● Developed technical documentation, SOPs, and training materials for client engineering teams

● Collaborated with InfoSec teams to define secure network architectures and incident response processes

IBM SOFTLAYER (Consulting Project) Dallas, TX

OpenStack Cloud Engineer February 2016 – May 2017 Strategic & Technical Impact

● Contributed to IBM's internal cloud transformation using multi-tenant OpenStack, improving enterprise scalability

● Increased resource utilization by 25% through virtualization, streamlined provisioning, and monitoring

● Engineered Swift/Block Storage configurations for large-scale object storage requirements

● Implemented Network Function Virtualization across AWS, Azure, and OpenStack environments

● Automated environment provisioning and patching using Python and Bash scripting AT&T, ERICSSON, AIC (Consulting Projects) Dallas, TX Cloud Deployment Engineer & NFV/SDN Specialist 2012 – 2016 Strategic & Technical Impact

● Supported AT&T's network transformation initiatives through NFV/SDN implementation across key infrastructure

● Deployed OpenStack-based clouds for telecommunications workloads with software-defined networking

● Automated network function deployments, reducing provisioning time from days to hours

● Engineered stable test environments for validating network functions prior to production deployment

FOX-REALTOR.COM LLC (Garrett & Terri LLC) Texas

Self-Employed – IT Career Break 2005 – 2012

● Built and operated a successful real estate business, surpassing $350M in total transaction volume

● Developed custom CRM systems, marketing automation, and SEO strategies generating consistent leads

● Maintained technical acumen through side consulting projects to ensure readiness for return to enterprise IT

HEWLETT-PACKARD, DELL, COMPAQ Various Locations

Advanced Systems Engineer August 1997 – August 2005 Strategic & Technical Impact

● Contributed to design and launch of enterprise server and storage solutions, improving reliability

● Enhanced QA processes through automated testing, reducing defects and accelerating time-to-market

● Engineered SAN/NAS solutions and high-availability clusters for mission-critical applications

● Built QA automation frameworks for firmware and hardware interoperability validation U.S. NAVY (USS John F. Kennedy CV-67)

Naval Intelligence Specialist (3rd Class Petty Officer) August 1993 – May 1996

● Maintained Top Secret SCI clearance while processing and analyzing classified intelligence data

● Operated specialized intelligence systems, collaborating with interdepartmental teams

● Prepared daily briefings for commanding officers, synthesizing complex data into actionable insights

● Ensured strict protocols for handling and dissemination of highly sensitive information TECHNICAL EXPERTISE

Cloud & DevSecOps:

Azure (Bicep, ARM Templates, DevOps Pipelines, Functions, AKS, Sentinel, Key Vault) AWS (Control Tower, Organizations, Lambda, IAM, Security Hub) OpenStack (Nova, Neutron, Swift)

CI/CD: GitHub Actions, Jenkins, AWS CodePipeline, Azure DevOps Policy-as-Code: HashiCorp Sentinel, Open Policy Agent (OPA), AWS Config Rules Infrastructure as Code & Automation:

IaC Tools: Terraform, Bicep, ARM, AWS CDK, Ansible, Chef Containers: Docker, Kubernetes, ECS/Fargate, AKS

Security Scanning: Checkov, SonarQube, Prisma Cloud, Wiz, Snyk Observability: Azure Monitor, Datadog, ELK Stack, New Relic, AWS X-Ray Programming & Scripting:

Python, Bash, Go, JavaScript/TypeScript, Node.js, React AI & ML Interests: LangChain, GPT-based automations for DevOps orchestration Compliance & Governance:

SOC 2, HIPAA, PCI-DSS, NIST 800-53, FFIEC

Zero Trust, Multi-Account Strategies, AWS Organizations Incident Response: PagerDuty, Jira Service Desk, Runbook Automation EDUCATION & CERTIFICATIONS

Lone Star College – Tomball College: Computer Science & Management Information Systems

(1997–2001)

U.S. Navy Training: Naval Intelligence Specialist, Top Secret SCI clearance (Honorable Discharge)

AWS Solutions Architect – Professional

AWS DevOps Engineer – Professional

Microsoft Certified: Azure Fundamentals (2022)

HashiCorp Certified: Terraform Associate

CISSP (2000)

CompTIA Security+, Network+, Cloud+

MCSE (Microsoft Certified Systems Engineer) (2000) SHRM People Manager Qualification (PMQ) (2024)

LEADERSHIP & COMMUNITY INVOLVEMENT

Team Leadership:

Managed and coached engineering teams of 15+ across global time zones. Introduced formal feedback loops, career development pathways, and knowledge-sharing sessions.

Championed DevSecOps culture—encouraging “shift-left” security. Industry Contributions:

Presented at AWS re:Invent on DevSecOps automation, policy-as-code, and bridging security with developer velocity.

Conducted hands-on workshops for cloud security, compliance automation, and advanced IaC patterns.

Continuous Learning:

Exploring AI integrations for DevOps processes (LangChain, GPT-based solutions). Building PoCs for zero-trust security, AI-driven anomaly detection, and event-driven architectures.

CAREER GOALS

Short-Term Objectives:

Lead a robust DevSecOps transformation blending innovation with rigorous security practices. Implement policy-as-code frameworks at scale, automating compliance checks to reduce manual overhead.

Develop mentorship programs to cultivate the next generation of DevSecOps engineers. Long-Term Vision:

Pioneer secure-by-design methodologies across organizations, aligning innovation with governance.

Influence industry best practices for cloud-native security and frictionless developer experience. Advance into AI engineering, leveraging 25+ years of IT experience to integrate ML into DevSecOps pipelines.

REFERENCES

Available upon request.

Contact this candidate